zfaka-plus/zfaka

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases46

Frequency3 weeks 4 days

Last Release almost 5 years ago

免费、安全、稳定、高效的发卡系统，值得拥有!

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-24553 ↗	Feb 21, 2022Monday, 21 February 2022, 12:15	9.8 CRITICAL	7.5 HIGH
An issue was found in Zfaka <= 1.4.5. The verification of the background file upload function check is not strict, resulting in remote command execution.
CVE-2022-22294 ↗	Jan 28, 2022Friday, 28 January 2022, 17:15	9.8 CRITICAL	7.5 HIGH
A SQL injection vulnerability exists in ZFAKA<=1.43 which an attacker can use to complete SQL injection in the foreground and add a background administrator account.